Resources

Search

WinComLPD LPD Monitoring Server Authentication Bypass

This script is Copyright (C) 2008-2015 Tenable Network Security, Inc.

Synopsis :

The remote service is affected by an authentication bypass
vulnerability.

Description :

The remote installation of WinComLPD fails to ensure that
authentication to its LPD Monitoring Server has been successful before
processing requests. A remote attacker can leverage this issue to
bypass authentication and gain administrative control of the affected
application.

Note that there are reportedly several other vulnerabilities
associated with this version of WinComLPD, including multiple buffer
overflows, although Nessus has not checked for them.

Contact

The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.